Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Ry8Ia0p7RqB0vEzyjTTrtppRJxA.roa
File: Ry8Ia0p7RqB0vEzyjTTrtppRJxA.roa (raw, json)
Hash identifier: CFQUDugwUnuKjywy5zIOEPOjm1VFVc30T7bp7dNCTcs=
Subject key identifier: 47:2F:08:6B:4A:7B:46:A0:74:BC:4C:F2:8D:34:EB:B6:9A:51:27:10
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC1
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Ry8Ia0p7RqB0vEzyjTTrtppRJxA.roa
Signing time: Wed 29 Sep 2021 02:41:01 +0000
ROA not before: Wed 29 Sep 2021 02:41:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 203.68.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2753 (0xac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=472F086B4A7B46A074BC4CF28D34EBB69A512710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:4a:a8:10:89:b7:d3:f5:33:80:51:67:74:
81:51:fb:0c:55:7e:87:53:f6:c6:63:39:9a:0a:6e:
70:60:d8:07:65:58:9d:eb:2a:b3:ad:ad:ce:6c:d7:
d3:58:f5:a2:6a:f0:56:75:97:88:09:d2:4a:35:0a:
6f:9b:6e:29:b9:d9:68:81:4a:a5:b7:5b:10:3b:5b:
bc:27:16:2d:5d:e1:15:8f:b0:24:e6:f4:13:dd:28:
c2:e6:4f:d4:cd:0a:dd:ac:7c:89:68:0d:e9:80:60:
c9:7d:ef:2e:2c:cc:43:bd:90:f4:db:b4:67:70:76:
c5:0c:28:36:ed:e5:77:00:1c:46:ff:56:bc:e8:eb:
6f:70:0e:8c:fb:b7:93:e6:42:3f:d7:62:f6:89:4a:
65:0e:fb:5f:f1:bd:3d:6e:77:c7:34:ae:92:53:22:
40:09:c2:ad:83:7d:ea:87:70:93:b7:c4:01:e2:a1:
e5:88:3b:d0:16:a3:33:a8:0c:ba:03:8c:8b:48:41:
a8:d8:63:27:5d:fc:bf:c2:27:f3:f7:88:75:a4:32:
85:45:85:85:18:e1:d7:9d:0c:01:25:35:41:b9:81:
13:2c:62:f5:e7:fc:eb:1a:dd:c6:2a:0a:49:23:e9:
d3:c8:f8:13:f2:b5:e2:fd:c3:bb:2e:9c:10:a5:b9:
77:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2F:08:6B:4A:7B:46:A0:74:BC:4C:F2:8D:34:EB:B6:9A:51:27:10
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Ry8Ia0p7RqB0vEzyjTTrtppRJxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.203.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:5f:5b:74:4d:38:30:96:60:fb:40:1a:c9:54:fb:aa:05:7c:
1e:70:b5:0e:9a:f5:bd:d0:ab:4e:ee:76:72:97:08:a0:ae:40:
f5:75:15:05:c3:30:9b:94:81:7b:40:5a:d8:4f:a4:d1:2e:8f:
7c:64:af:8a:11:1c:4c:7f:d1:ca:29:7e:db:3d:1d:33:5f:27:
68:82:6e:9d:58:ed:f4:ec:4b:66:8b:93:2a:6c:3d:83:81:4e:
a2:e0:9f:a7:c4:2e:9b:03:b8:58:92:d0:27:e3:65:80:6f:b5:
1f:2c:e1:5b:0a:82:53:aa:95:30:c5:e6:3f:56:a0:d3:5e:02:
6d:04:05:7e:6f:e2:7f:b5:d5:b2:77:c1:0c:db:46:b4:75:01:
24:66:e7:39:12:3e:2a:83:97:cc:6f:5b:be:37:7c:1d:ee:e0:
75:15:71:11:d6:e4:5d:f9:25:05:58:4d:a6:99:ff:18:38:87:
3f:dc:b3:77:51:b6:72:43:d7:f3:ff:e5:19:e3:24:25:7e:a4:
7f:24:53:56:cd:46:b4:7a:e5:d2:25:db:22:91:28:0f:01:53:
9d:bd:c3:c6:86:12:1d:af:d9:b5:aa:0f:ff:48:d6:d2:1e:7d:
bf:c5:98:2c:9f:dc:12:a7:49:59:46:58:7c:4c:9b:6d:d3:5c:
c4:99:11:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org